Skip to content

build(deps): bump the simple2 group across 1 directory with 4 updates#36829

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/simple2-db832268fd
Open

build(deps): bump the simple2 group across 1 directory with 4 updates#36829
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/simple2-db832268fd

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 31, 2026
edited
Loading

Bumps the simple2 group with 4 updates in the / directory: native-tls, prost-reflect, rpassword and socket2.

Updates native-tls from 0.2.15 to 0.2.18

Release notes

Sourced from native-tls's releases.

v0.2.17

What's Changed

Full Changelog: rust-native-tls/rust-native-tls@v0.2.16...v0.2.17

v0.2.16

Full Changelog: rust-native-tls/rust-native-tls@v0.2.15...v0.2.16

Changelog

Sourced from native-tls's changelog.

[v0.2.18]

  • Fixed min/max protocol selection fallback for very old OpenSSL versions.

[v0.2.17]

  • Added support for ALPN on the server side on non-Apple platforms.
  • Fixed iOS + ALPN feature flag.

[v0.2.16]

  • Added TLS 1.3 as an option on non-Apple platforms. Apple platforms will fall back to TLS 1.2 when it's allowed, or fail due to lack of TLS 1.3 in the Security.framework.
  • Added stack_from_pem (except iOS).
  • Upgraded openssl-probe.
  • Upgraded Security.framework bindings.
  • Simplified cfg()s to support all non-macOS Apple platforms.
Commits
  • 3cf1877 TLS 1.3 min/max fallback for old OpenSSL versions
  • a352cb3 Exclude unused files from the package
  • be13f94 Release 0.2.17
  • 8213e1d fmt
  • c250fa7 Test features
  • bd165e9 Work around set_alpn_select_callback lifetime issues
  • 64439ad Use separate feature flag for server-side ALPN
  • aa71c45 Common helper for alpn
  • 1be1ac9 add ALPN server side test
  • f640501 Add ALPN implement for schannel
  • Additional commits viewable in compare view

Updates prost-reflect from 0.16.3 to 0.16.4

Release notes

Sourced from prost-reflect's releases.

prost-reflect-v0.16.4

Fixed

  • Fix proto3 default for is_packed when FieldOptions is present but packed is absent (#196)

Other

  • Update logos to 0.16.0 #192
Changelog

Sourced from prost-reflect's changelog.

0.16.4 - 2026-05-24

Fixed

  • Fix proto3 default for is_packed when FieldOptions is present but packed is absent (#196)

Other

  • Update logos to 0.16.0 #192
Commits
  • 4815843 chore: release (#191)
  • 6e22dfe replace serde_yaml 0.9 to yaml_serde 0.10 (#193)
  • 57f463a test: extend is_packed regression to cover proto2 and extension fields (#198)
  • 9be1d05 Fix unbounded regex in text format parser
  • e85b8e1 Merge remote-tracking branch 'origin/main' into bump_logos
  • ca7f286 fix: restore proto3 default for is_packed when FieldOptions is present but pa...
  • 1aabd79 Fix ci (#197)
  • f88da53 Update logos to remove some outdated dependencies
  • See full diff in compare view

Updates rpassword from 7.5.2 to 7.5.4

Release notes

Sourced from rpassword's releases.

v7.5.4

No functional changes.

I've added license checks with Cargo Deny to ensure that the Apache 2.0 license is compatible with dependencies.

This release also updates the description to make it clear this library is cross-platform on crates.io.

v7.5.3

Fixes compile errors with Rust 1.85. Thanks @​nwalfield for reporting in conradkleinespel/rpassword#130.

Backwards compatible. No breaking change.

Commits
  • 1151510 add license checks
  • 3ca2ece bump to 7.5.3
  • ed863bf remove cargo-tarpaulin build incompatible with rust 1.85 from ci
  • 479012d fixes compile errors with rust 1.85
  • 6ee4708 update nix config to use rust 1.85
  • 6d3518d run ci with rust 1.85
  • See full diff in compare view

Updates socket2 from 0.6.3 to 0.6.4

Changelog

Sourced from socket2's changelog.

0.6.4

Commits

@dependabot dependabot Bot added the A-dependencies Area: dependency upgrades label May 31, 2026
@dependabot dependabot Bot changed the title build(deps): bump the simple2 group with 4 updates build(deps): bump the simple2 group across 1 directory with 4 updates Jun 1, 2026
@dependabot dependabot Bot force-pushed the dependabot/cargo/simple2-db832268fd branch 2 times, most recently from 23439c4 to aae553a Compare June 1, 2026 17:27
@dependabot
build(deps): bump the simple2 group across 1 directory with 4 updates
8ffb36d 
Bumps the simple2 group with 4 updates in the / directory: [native-tls](https://github.com/rust-native-tls/rust-native-tls), [prost-reflect](https://github.com/andrewhickman/prost-reflect), [rpassword](https://github.com/conradkleinespel/rpassword) and [socket2](https://github.com/rust-lang/socket2).


Updates `native-tls` from 0.2.15 to 0.2.18
- [Release notes](https://github.com/rust-native-tls/rust-native-tls/releases)
- [Changelog](https://github.com/rust-native-tls/rust-native-tls/blob/main/CHANGELOG.md)
- [Commits](rust-native-tls/rust-native-tls@v0.2.15...v0.2.18)

Updates `prost-reflect` from 0.16.3 to 0.16.4
- [Release notes](https://github.com/andrewhickman/prost-reflect/releases)
- [Changelog](https://github.com/andrewhickman/prost-reflect/blob/main/CHANGELOG.md)
- [Commits](andrewhickman/prost-reflect@prost-reflect-v0.16.3...prost-reflect-v0.16.4)

Updates `rpassword` from 7.5.2 to 7.5.4
- [Release notes](https://github.com/conradkleinespel/rpassword/releases)
- [Commits](conradkleinespel/rpassword@v7.5.2...v7.5.4)

Updates `socket2` from 0.6.3 to 0.6.4
- [Release notes](https://github.com/rust-lang/socket2/releases)
- [Changelog](https://github.com/rust-lang/socket2/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rust-lang/socket2/commits)

---
updated-dependencies:
- dependency-name: native-tls
  dependency-version: 0.2.18
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: prost-reflect
  dependency-version: 0.16.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: rpassword
  dependency-version: 7.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
- dependency-name: socket2
  dependency-version: 0.6.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: simple2
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/cargo/simple2-db832268fd branch from aae553a to 8ffb36d Compare June 3, 2026 16:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

A-dependencies Area: dependency upgrades

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants